> > Webrev lives here: > > > > http://cr.opensolaris.org/~johansen/webrev-2951/ > > In the short-term, this seems like it would work. In the long-term, I > would think we would want a generic hook for any validation we need to > perform about the server in question. Specifically, I anticipate > alternate transport methods being used in the future, and I wouldn't > want the certificate check to be forced for them as it likely won't be > applicable.
I don't want to preclude alternate transport methods, especially since I'm likely to be the one doing most of that work. Keep in mind that we only check for an authority where a certificate has been configured. We assume that if you have one installed, you'd like to know when it expires, and that you can't use an expired one if you have it. Thanks, -j _______________________________________________ pkg-discuss mailing list [email protected] http://mail.opensolaris.org/mailman/listinfo/pkg-discuss
